Period
to 24 July 2019

The following table provides summary statistics for contract job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited PCI DSS over the 6 months to 24 July 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
24 Jul 2019
Same period 2018 Same period 2017
Rank 492 407 435
Rank change year-on-year -85 +28 -38
Contract jobs citing PCI DSS 390 592 488
As % of all contract IT jobs advertised in the UK 0.42% 0.57% 0.51%
As % of the Quality Assurance & Compliance category 4.10% 4.95% 4.37%
Number of daily rates quoted 254 393 329
UK median daily rate £525 £500 £475
Median daily rate % change year-on-year +5.00% +5.26% +5.56%
10th Percentile £375 £327 £350
90th Percentile £721 £663 £613
UK excluding London median daily rate £500 £475 £475
% change year-on-year +5.26% - +11.76%
Number of hourly rates quoted 2 3 0
UK median hourly rate £29.00 £60.00 -
Median hourly rate % change year-on-year -51.67% - -
UK excluding London median hourly rate £23.00 £52.50 -
% change year-on-year -56.19% - -

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 9,506 11,955 11,159
As % of all contract IT jobs advertised in the UK 10.34% 11.57% 11.73%
Number of daily rates quoted 5,889 7,620 7,239
UK median daily rate £450 £450 £440
Median daily rate % change year-on-year - +2.27% +7.32%
10th Percentile £238 £250 £250
90th Percentile £638 £631 £625
UK excluding London median daily rate £420 £400 £400
% change year-on-year +5.00% - +6.67%
Number of hourly rates quoted 415 391 359
UK median hourly rate £22.50 £24.00 £20.00
Median hourly rate % change year-on-year -6.25% +20.00% -9.09%
10th Percentile £10.80 £11.50 £11.00
90th Percentile £53.75 £53.75 £52.50
UK excluding London median hourly rate £23.17 £22.50 £19.50
% change year-on-year +2.98% +15.38% -12.36%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing PCI DSS.

Contractor daily rate trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing PCI DSS over the 6 months to 24 July 2019.

Contractor daily rate histogram for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing PCI DSS.

Contractor hourly rate trend for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Histogram

The hourly rate distribution of IT jobs citing PCI DSS over the 6 months to 24 July 2019.

Contractor hourly rate histogram for PCI DSS in the UK

PCI DSS
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing PCI DSS within the UK over the 6 months to 24 July 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -86 368 £535 +7.00% 145
UK excluding London -78 217 £500 +5.26% 99
London -12 164 £600 +17.07% 50
South East -9 86 £480 -8.57% 21
North of England +3 44 £558 +31.18% 40
South West -27 35 £526 +23.76% 8
Yorkshire +7 26 £540 +21.69% 17
Midlands -1 25 £438 - 23
West Midlands +21 20 £438 +9.38% 20
North West +2 16 £580 +44.10% 19
East of England -9 12 £513 +0.99% 3
Wales +10 11 £385 -18.00% 3
Scotland +29 6 £350 -7.28% 1
East Midlands +3 5 - - 3
North East +21 2 £500 +24.03% 4

For the 6 months to 24 July 2019, IT contractor jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for PCI DSS.

1 191 (48.97%) ISO/IEC 27001
2 152 (38.97%) Information Security
3 118 (30.26%) Amazon AWS
4 115 (29.49%) CISSP
5 94 (24.10%) NIST
6 93 (23.85%) Cybersecurity
7 89 (22.82%) GDPR
8 86 (22.05%) CISM
9 85 (21.79%) Microsoft Azure
10 83 (21.28%) DevOps
11 81 (20.77%) Security Architecture
12 80 (20.51%) Linux
13 73 (18.72%) SIEM
14 71 (18.21%) Microsoft
15 67 (17.18%) ITIL
15 67 (17.18%) Finance
16 60 (15.38%) Agile Software Development
16 60 (15.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
17 58 (14.87%) Firewall
18 57 (14.62%) Security Operations
19 54 (13.85%) Risk Management
20 52 (13.33%) Web Services
20 52 (13.33%) Windows
20 52 (13.33%) Puppet
21 49 (12.56%) Splunk
22 48 (12.31%) CISA
23 45 (11.54%) Red Hat Enterprise Linux
23 45 (11.54%) AWS Certification
24 44 (11.28%) Opscode Chef
25 43 (11.03%) Change Management

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (4.62%) IIS
2 15 (3.85%) OpenStack
3 9 (2.31%) Apache
4 8 (2.05%) JBoss
4 8 (2.05%) MS Exchange
5 6 (1.54%) Confluence
6 3 (0.77%) Exchange Server 2010
6 3 (0.77%) Exchange Server 2013
6 3 (0.77%) SharePoint
7 1 (0.26%) Apache Spark
7 1 (0.26%) Commerce Server
7 1 (0.26%) Drupal
7 1 (0.26%) Skype for Business
7 1 (0.26%) Tomcat
7 1 (0.26%) WebSphere
Applications
1 14 (3.59%) Microsoft Excel
2 11 (2.82%) Microsoft PowerPoint
3 10 (2.56%) Microsoft Office
4 2 (0.51%) MS Visio
5 1 (0.26%) Spreadsheet
Business Applications
1 7 (1.79%) Payment Gateway
2 1 (0.26%) assyst
2 1 (0.26%) BASE24
2 1 (0.26%) Oracle Financials
2 1 (0.26%) Postilion
Cloud Services
1 118 (30.26%) Amazon AWS
2 85 (21.79%) Microsoft Azure
3 31 (7.95%) SaaS
4 26 (6.67%) Office 365
5 24 (6.15%) PaaS
6 20 (5.13%) Google Cloud Platform
7 18 (4.62%) IaaS
8 8 (2.05%) Serverless
9 6 (1.54%) GitHub
10 5 (1.28%) OpenShift
11 4 (1.03%) AWS Lambda
11 4 (1.03%) Power Platform
12 3 (0.77%) Akamai
12 3 (0.77%) Mimecast
13 1 (0.26%) Apple Pay
13 1 (0.26%) Azure ExpressRoute
13 1 (0.26%) Cloud Computing
13 1 (0.26%) Slack
Communications & Networking
1 58 (14.87%) Firewall
2 29 (7.44%) VPN
3 23 (5.90%) DNS
4 18 (4.62%) VLAN
4 18 (4.62%) WAN
5 17 (4.36%) Internet
6 15 (3.85%) Network Security
7 14 (3.59%) LAN
8 12 (3.08%) DHCP
9 10 (2.56%) Cisco ASA
9 10 (2.56%) MPLS
10 9 (2.31%) SSL
11 8 (2.05%) BGP
12 7 (1.79%) OSPF
13 6 (1.54%) 3GPP
13 6 (1.54%) Cisco Nexus
13 6 (1.54%) IP Telephony
13 6 (1.54%) SAN
13 6 (1.54%) Wireless
14 5 (1.28%) Ethernet
Database & Business Intelligence
1 14 (3.59%) Big Data
1 14 (3.59%) SQL Server
2 6 (1.54%) MySQL
3 5 (1.28%) NoSQL
3 5 (1.28%) Oracle Database
3 5 (1.28%) Relational Database
4 4 (1.03%) MariaDB
4 4 (1.03%) Oracle Reports
4 4 (1.03%) Power BI
5 3 (0.77%) DB2
5 3 (0.77%) MongoDB
6 2 (0.51%) Data Lake
6 2 (0.51%) Oracle Database 11g
6 2 (0.51%) Oracle Database 12c
6 2 (0.51%) Oracle Exadata
6 2 (0.51%) RDBMS
7 1 (0.26%) Azure SQL Database
7 1 (0.26%) PostgreSQL
7 1 (0.26%) SQL CLR
7 1 (0.26%) Sqoop
Development Applications
1 40 (10.26%) Jenkins
2 36 (9.23%) Git (software)
3 29 (7.44%) Sonatype Nexus
4 9 (2.31%) JIRA
5 8 (2.05%) Visual Studio
6 4 (1.03%) Artifactory
6 4 (1.03%) Burp Suite
6 4 (1.03%) sqlmap
7 2 (0.51%) DbUnit
7 2 (0.51%) Eclipse
7 2 (0.51%) JUnit
7 2 (0.51%) Maven
7 2 (0.51%) SonarQube
7 2 (0.51%) Subversion
7 2 (0.51%) TeamCity
8 1 (0.26%) Atlassian Bamboo
8 1 (0.26%) Bitbucket
8 1 (0.26%) Cucumber
8 1 (0.26%) Selenium
8 1 (0.26%) Team Foundation Server
General
1 67 (17.18%) Finance
2 34 (8.72%) Retail
3 24 (6.15%) Legal
4 17 (4.36%) Telecoms
5 15 (3.85%) Law
6 10 (2.56%) Banking
7 8 (2.05%) Financial Institution
8 5 (1.28%) Back Office
8 5 (1.28%) Local Government
9 3 (0.77%) Military
9 3 (0.77%) Multimedia
10 2 (0.51%) Marketing
11 1 (0.26%) Corporate Banking
11 1 (0.26%) French Language
11 1 (0.26%) Games
11 1 (0.26%) German Language
11 1 (0.26%) Italian Language
11 1 (0.26%) Manufacturing
11 1 (0.26%) Retail Banking
11 1 (0.26%) Spanish Language
Job Titles
1 104 (26.67%) Architect
2 73 (18.72%) Security Architect
3 51 (13.08%) Analyst
4 48 (12.31%) Consultant
5 42 (10.77%) Security Consultant
6 34 (8.72%) Cloud Architect
7 32 (8.21%) Security Analyst
8 30 (7.69%) Security Engineer
9 22 (5.64%) Security Officer
10 17 (4.36%) Business Analyst
11 15 (3.85%) Cybersecurity Analyst
12 13 (3.33%) Cybersecurity Consultant
12 13 (3.33%) Developer
12 13 (3.33%) IT Security Officer
13 12 (3.08%) Security Specialist
14 11 (2.82%) Information Security Consultant
14 11 (2.82%) Project Manager
15 10 (2.56%) Enterprise Architect
15 10 (2.56%) Infrastructure Engineer
15 10 (2.56%) Network Engineer
Libraries, Frameworks & Software Standards
1 52 (13.33%) Web Services
2 11 (2.82%) .NET
2 11 (2.82%) JSON
3 9 (2.31%) Middleware
4 6 (1.54%) Spring
4 6 (1.54%) XML
5 5 (1.28%) AngularJS
5 5 (1.28%) jQuery
5 5 (1.28%) React
6 4 (1.03%) .NET Core
6 4 (1.03%) GraphQL
6 4 (1.03%) OAuth
6 4 (1.03%) REST
7 3 (0.77%) HTML
8 2 (0.51%) 802.1X
8 2 (0.51%) JSP
8 2 (0.51%) LDAP
8 2 (0.51%) Node.js
8 2 (0.51%) Spring Boot
9 1 (0.26%) React Native
Miscellaneous
1 35 (8.97%) Data Centre
2 33 (8.46%) Analytical Skills
3 32 (8.21%) Management Information System
4 16 (4.10%) PKI
5 9 (2.31%) Cyberthreat
5 9 (2.31%) Data Protection Act
5 9 (2.31%) Enterprise Software
6 8 (2.05%) Hybrid Cloud
6 8 (2.05%) Mobile App
6 8 (2.05%) Virtual Team
7 6 (1.54%) Distributed Denial-of-Service
7 6 (1.54%) Greenfield Project
7 6 (1.54%) Private Cloud
8 5 (1.28%) Enterprise Cloud
8 5 (1.28%) IVR
8 5 (1.28%) Security Operations Centre
8 5 (1.28%) Self-Motivation
9 4 (1.03%) Chip and PIN
9 4 (1.03%) Handset
9 4 (1.03%) Public Cloud
Operating Systems
1 80 (20.51%) Linux
2 52 (13.33%) Windows
3 45 (11.54%) Red Hat Enterprise Linux
4 18 (4.62%) Windows Server
5 17 (4.36%) Unix
6 11 (2.82%) Windows Server 2012
7 10 (2.56%) Solaris
8 9 (2.31%) Windows Server 2008
9 7 (1.79%) Android
10 6 (1.54%) Apple iOS
10 6 (1.54%) Windows 7
11 4 (1.03%) Windows Server 2003
12 3 (0.77%) Windows 10
13 2 (0.51%) AIX
14 1 (0.26%) Debian
14 1 (0.26%) Mac OS
14 1 (0.26%) Ubuntu
14 1 (0.26%) Windows 8
14 1 (0.26%) Windows XP
Processes & Methodologies
1 152 (38.97%) Information Security
2 93 (23.85%) Cybersecurity
3 83 (21.28%) DevOps
4 81 (20.77%) Security Architecture
5 73 (18.72%) SIEM
6 67 (17.18%) ITIL
7 60 (15.38%) Agile Software Development
8 57 (14.62%) Security Operations
9 54 (13.85%) Risk Management
10 43 (11.03%) Change Management
11 42 (10.77%) Stakeholder Management
12 38 (9.74%) Threat Management
13 37 (9.49%) Vulnerability Scanning
14 35 (8.97%) Data Protection
15 34 (8.72%) Data Analysis
16 33 (8.46%) Project Management
17 30 (7.69%) Incident Management
18 27 (6.92%) Penetration Testing
18 27 (6.92%) TOGAF
19 24 (6.15%) Business Continuity
Programming Languages
1 31 (7.95%) Java
2 25 (6.41%) Python
3 22 (5.64%) SQL
4 21 (5.38%) PowerShell
5 19 (4.87%) C#
6 17 (4.36%) JavaScript
7 9 (2.31%) Perl
8 7 (1.79%) PHP
8 7 (1.79%) Ruby
9 6 (1.54%) Bash Shell
10 5 (1.28%) Apple Swift
10 5 (1.28%) C
10 5 (1.28%) T-SQL
11 4 (1.03%) Objective-C
12 3 (0.77%) Go
13 2 (0.51%) Shell Script
14 1 (0.26%) C++
14 1 (0.26%) Kotlin
14 1 (0.26%) R
14 1 (0.26%) Scala
Qualifications
1 115 (29.49%) CISSP
2 86 (22.05%) CISM
3 48 (12.31%) CISA
4 45 (11.54%) AWS Certification
5 35 (8.97%) Security Cleared
6 34 (8.72%) Degree
7 31 (7.95%) RHCE
8 30 (7.69%) Cisco Certification
8 30 (7.69%) SC Cleared
9 13 (3.33%) IISP
10 11 (2.82%) (ISC)2 CCSP
10 11 (2.82%) SANS
11 9 (2.31%) CCIE
11 9 (2.31%) CRISC
12 8 (2.05%) CCNA
13 7 (1.79%) CISMP
14 6 (1.54%) CCNP
14 6 (1.54%) CGEIT
14 6 (1.54%) CLAS
14 6 (1.54%) ITIL Certification
Quality Assurance & Compliance
1 191 (48.97%) ISO/IEC 27001
2 94 (24.10%) NIST
3 89 (22.82%) GDPR
4 60 (15.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 42 (10.77%) Sarbanes-Oxley
6 20 (5.13%) COBIT
7 10 (2.56%) Cyber Essentials
8 8 (2.05%) HIPAA
9 7 (1.79%) SLA
10 5 (1.28%) PA-DSS
11 4 (1.03%) ISAE 3402
11 4 (1.03%) ISO 9001
11 4 (1.03%) NCSC
11 4 (1.03%) QA
12 3 (0.77%) FISMA
12 3 (0.77%) ISO 22301
12 3 (0.77%) ISO 31000
12 3 (0.77%) PMO
13 2 (0.51%) COSO
13 2 (0.51%) ISO/IEC 27005
System Software
1 41 (10.51%) Active Directory
2 26 (6.67%) Docker
3 18 (4.62%) VMware Infrastructure
4 6 (1.54%) VMware ESXi
5 5 (1.28%) Hyper-V
6 3 (0.77%) KVM
6 3 (0.77%) NFS
6 3 (0.77%) Virtual Machines
6 3 (0.77%) XenApp
6 3 (0.77%) XenDesktop
7 2 (0.51%) ISA Server
8 1 (0.26%) Oracle RAC
8 1 (0.26%) Terminal Services
8 1 (0.26%) vSphere
Systems Management
1 52 (13.33%) Puppet
2 44 (11.28%) Opscode Chef
3 41 (10.51%) Ansible
4 31 (7.95%) SELinux
5 23 (5.90%) Kubernetes
6 14 (3.59%) CASB
7 7 (1.79%) Terraform
8 5 (1.28%) Oracle Identity Management
8 5 (1.28%) Single Sign-On
8 5 (1.28%) Suricata
9 4 (1.03%) HAProxy
9 4 (1.03%) Kibana
10 3 (0.77%) Cisco Prime
10 3 (0.77%) IBM Guardium
10 3 (0.77%) Nessus
11 2 (0.51%) Trend Micro Deep Security
11 2 (0.51%) vRealize
12 1 (0.26%) Computer Emergency Response Teams
12 1 (0.26%) MaaS360
12 1 (0.26%) ZENworks
Vendors
1 71 (18.21%) Microsoft
2 49 (12.56%) Splunk
3 41 (10.51%) Red Hat
4 39 (10.00%) Qualys
5 26 (6.67%) VMware
6 21 (5.38%) Cisco
7 19 (4.87%) Oracle
8 15 (3.85%) Google
9 11 (2.82%) Juniper
10 10 (2.56%) Imperva
11 9 (2.31%) SAP
12 8 (2.05%) CheckPoint
12 8 (2.05%) HP
13 7 (1.79%) LogRhythm
14 6 (1.54%) ArcSight
14 6 (1.54%) F5
14 6 (1.54%) Palo Alto
14 6 (1.54%) SolarWinds
14 6 (1.54%) Sophos
15 5 (1.28%) Salesforce.com